71 applicants

Company

C3 Integrated Solutions · 4 days ago

Compliance Consultant

United States

Full-time

Remote

Senior Level

7+ years exp

Maximize your interview chances

Cloud ComputingCyber Security

No H1B

U.S. Citizen Only

Security Clearance Required

Insider Connection @C3 Integrated Solutions

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Document the flow of sensitive and controlled data types through existing business processes

Determine a system scope (technology, people, business processes) for compliance

Collaborate with customers, technical, and functional teams to define, document, and deliver security documentation and artifacts

Assess the current implementation of applicable technical and non-technical requirements (e.g., CMMC, DFARS, FAR, export controls)

Develop and manage System Security Plan(s), policies, and procedures

Manage customer expectations, internal and external resources, and relevant third parties to ensure engagements are successful

Develop and maintain subject matter expertise in the laws, regulations, and government-wide policies that govern cybersecurity data protection for the U.S. Defense Industrial Base, including: DFARS (NIST SP 800-171, FedRAMP equivalency), CMMC (Levels 1 & 2, boundary scoping), CUI Program (NARA CUI Registry, CUI/CDI/CTI, FCI), Export controls (ITAR/EAR)

Provide ongoing advisory to clients on issues related to security and compliance

Assist team members with client needs as needed

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

NIST SP 800-171CMMCDFARSCybersecurity complianceRisk managementMicrosoft AzureCISSPCISMITAREARNISTCISAMITRE ATT&CK

Required

Hands-on experience implementing NIST SP 800-171 or SP 800-53 is required

7 or more years of experience implementing cybersecurity requirements for Department of Defense contractors (DFARS 252.204-7012, NIST SP 800-171) or federal information systems (RMF, NIST SP 800-53)

Very strong written and verbal communication skills, with the ability to convey technical information as a subject matter expert (SME) for various compliance frameworks

High emotional intelligence and interpersonal skills, with an enthusiasm for collaboration and coordination with various client company stakeholders from executive management to entry-level staff

Strong organizational and time management skills with ability to correctly prioritize workload to maintain schedules, deadlines, and standards on assigned projects

Ability to remain calm under pressure and be adaptable

Ability to cross-train into other specialties

Understanding of the cybersecurity product/vendor landscape and current security best practices

Subject matter expertise in CMMC assessment and certification requirements (including assessment objectives up to Level 2) and DFARS 252.204-7012 requirements (including FedRAMP Moderate equivalency requirements for cloud service providers and paragraph (c) – (g) requirements)

Awareness of U.S. export control requirements under ITAR and EAR

Occasional (<10%) travel to various work sites throughout the U.S. may be required

US Citizens only

Veteran preferred

Preferred

Professional certifications such as the Cyber AB’s CCP or CCA, or other industry credentials such as CISSP, CISM, CISA, or similar

Experience leveraging Microsoft cloud services (Azure, Office 365) to meet compliance requirements, especially in Azure Government and Microsoft 365 GCC High environments

Experience consulting with multiple clients at the same time

Bachelor’s degree or higher in technology, engineering, or related field

Ability to obtain U.S. government security clearance